(19)
(11) EP 3 934 212 A3

(12) EUROPEAN PATENT APPLICATION

(88) Date of publication A3:
27.04.2022 Bulletin 2022/17

(43) Date of publication A2:
05.01.2022 Bulletin 2022/01

(21) Application number: 21183407.2

(22) Date of filing: 02.07.2021
(51) International Patent Classification (IPC): 
H04L 61/4511(2022.01)
H04L 9/08(2006.01)
 H04L 61/4552(2022.01)
H04L 9/32(2006.01)
(52) Cooperative Patent Classification (CPC):
H04L 63/12; H04L 61/1511; H04L 61/1552; H04L 9/3247; H04L 9/0891
(84) Designated Contracting States:
AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR
Designated Extension States:
BA ME
Designated Validation States:
KH MA MD TN

(30) Priority: 02.07.2020 US 202016920076

(71) Applicant: Afilias Limited
D01 VY76 Dublin (IE)

(72) Inventors:
  • ELAND, Howard
    Horsham, 19044 (US)
  • GALVIN, James
    Horsham, 19044 (US)

(74) Representative: Studio Torta S.p.A. 
Via Viotti, 9
10121 Torino
10121 Torino (IT)

   


(54) SYSTEM AND METHOD FOR PUBLISHING DNS RECORDS OF A DOMAIN INCLUDING EITHER SIGNED OR UNSIGNED RECORDS


(57) A system for publishing a plurality of Domain Name System (DNS) records for a domain name, the system comprising: a record selection module for obtaining selected data of registry data associated with the domain name in a registry database; a DNS Security (DNSSEC) signing system having at least one signing module for digitally signing the selected data of the registry data, the digitally signing using one or more signing keys (SK) to generate a signed DNS record, the one or more signing keys associated with the registry data of the domain name; a distribution system for coordinating the publishing of a set of DNS records in the DNS by facilitating transmitting of the set of DNS records to one or more authoritative servers of the DNS in a transmission path that bypasses storing of the signed DNS record in the registry database, the set of DNS records generated based on a signing identifier on how to generate the set of DNS records by either: a) sending the selected data to the DNSSEC signing system for subsequent direct inclusion as the signed DNS record in the set of DNS records by the DNSSEC signing system using a set of generation instructions; or b) including the selected data as an unsigned DNS record in the set of DNS records by the distribution system using the set of generation instructions, wherein the transmission path also bypasses the at least one signing module of the DNSSEC signing system.







Search report









Search report